2471b9f54c33088b5273d97ac3b51569_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2471b9f54c33088b5273d97ac3b51569_JaffaCakes118
Size

188KB
MD5

2471b9f54c33088b5273d97ac3b51569
SHA1

be22df1717432e7cd85156cd8c6ec45ec1342f8d
SHA256

10be1a5dcdcd34fa337f65c6b316700fd0550c95a82e8fb18bc10c5394fd339a
SHA512

eceb87354ba869d028e90f30ec2c483a71f7ca72f46425dfa54d938a3d223da66d7b1dec10b9a7e31edbce593f5b53e58bd6c54e0312161b489aada045bd6436
SSDEEP

3072:xZkwZ2RnDeSqT/0JqBy6JxQoyhPxWVH9zK6VXiKrULZu+uDGMi3kvw6tc1FFoSqH:xzIRnDi0AQ6JI5wNR5XiKrUFu3DGMim/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2471b9f54c33088b5273d97ac3b51569_JaffaCakes118

Files

2471b9f54c33088b5273d97ac3b51569_JaffaCakes118
.exe windows:5 windows x86 arch:x86

753defcfd9910456e6eebff3c0911823

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

query

?DisableVPathNotify@CMetaDataMgr@@QAEXXZ
?_FindOrAddValueNode@CDbPropertyRestriction@@AAEPAVCDbScalarValue@@XZ
?ResetType@CAllocStorageVariant@@IAEXAAVPMemoryAllocator@@@Z
??0CSizeSerStream@@QAE@XZ
??0CDbContentRestriction@@QAE@PBGABUtagDBID@@KK@Z
?RemoveCatalog@CMachineAdmin@@QAEXPBGH@Z
??0CVirtualString@@QAE@I@Z
?VT_VARIANT_GT@@YGHABUtagPROPVARIANT@@0@Z
?StopFiltering@CFilterDaemon@@QAEXXZ
?IsValid@COccRestriction@@QBEHXZ
?InitIterator@CCombinedPropertyList@@UAEXXZ
?AddCachedProperty@CCatalogAdmin@@QAEXABVCFullPropSpec@@KKKH@Z
?AddArg@CEventItem@@QAEXPBG@Z
?Value@CDbScalarValue@@QAEXAAVCStorageVariant@@@Z
?SetScopeProperties@@YGXPAUICommand@@IPBQBGPBK11@Z
?StopCI@CMachineAdmin@@QAEHXZ
?GetPropTypeName@CEmptyPropertyList@@SGPBGI@Z

opengl32

glColor3usv
glMultMatrixf
glIndexs
glPopAttrib
glTexCoord2iv
glGetTexLevelParameterfv
glStencilFunc
wglSetLayerPaletteEntries
glTexCoord2dv
glTexCoord4iv
glRasterPos3dv
glListBase
glTexCoord1dv
glRasterPos4sv
glGetTexImage
glEvalCoord2d

kernel32

GetPrivateProfileStructW
_lcreat
SetLocalPrimaryComputerNameW
CreateConsoleScreenBuffer
GetCurrentProcessId
SetEnvironmentVariableA
GetLogicalDrives
GetFullPathNameW
MapUserPhysicalPagesScatter
DebugActiveProcess
EnumSystemLocalesW
QueryPerformanceCounter
VirtualAlloc
GetCurrentThreadId
FindVolumeMountPointClose
GetTimeZoneInformation
GetTickCount
ProcessIdToSessionId

dmcompos

DllGetClassObject
DllRegisterServer
DllUnregisterServer
DllCanUnloadNow

msvcp60

??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z
?is@?$ctype@D@std@@QBEPBDPBD0PAF@Z
?_Init@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAEXABV_Locinfo@2@@Z
?conj@std@@YA?AV?$complex@N@1@ABV21@@Z
?copy@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPAGII@Z
??0_Locinfo@std@@QAE@ABV01@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
?assign@?$char_traits@G@std@@SAPAGPAGIABG@Z
??Hstd@@YA?AV?$complex@N@0@ABNABV10@@Z
??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z
?pow@std@@YA?AV?$complex@M@1@ABMABV21@@Z
?imag@?$_Complex_base@N@std@@QAENABN@Z
??1length_error@std@@UAE@XZ
??_F?$moneypunct@G$0A@@std@@QAEXXZ
?atan2@?$_Ctr@M@std@@SAMMM@Z

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

753defcfd9910456e6eebff3c0911823

Headers

DLL Characteristics

File Characteristics

Imports

query

opengl32

kernel32

dmcompos

msvcp60

Sections

.text Size: 87KB - Virtual size: 87KB

.idat Size: 59KB - Virtual size: 59KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 87KB - Virtual size: 87KB

.idat
Size: 59KB - Virtual size: 59KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 1KB - Virtual size: 1KB